IN THE CLAIMS 

Please cancel claim 4 and 16. 

Please amend claims 1, 9, 10, 13, 18, 23-25 and 28. 



1. (Currently amended) A method comprising: 
viding a virtual machine monitor (VMM) into a first portion and a second portion; 

locating the second portion of the VMM in a second address space associated with the 

VMM; 

mapping the first portion of the VMM into a first address space and the second address 
space, the first address space being associated with the guest operating system; 

detecting toat a the guest operating system attempts to access a region occupied by a the 
first portion of a virtual machine monitor ( the VMM) within a the first address space; and 

relocating thafirst portion of the VMM within the first address space to allow the guest 
operating system to access the region previously occupied by the first portion of the VMM. 

2. (Original) The method of claim 1 wherein the first portion of the VMM includes a set of 
VMM code and data structures that are architecturally required to reside in the first address 
space. 

3. (Original) The method of claim 1 wherein the first portion of the VMM includes a set of 
trap handlers and an interruptWescriptor table (IDT). 

5. (Original) The method ot claim 1 further comprising: 
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\ receiving control over an event initiated by the guest operating system when the event 
may potentially cause an address space conflict between the guest operating system and the 
VMM. \ 

6. (Original) The method of claim 5 wherein receiving control further comprises: 
setting access rights of the section occupied by the first portion of the VMM to a more 

privileged level than a privilege level associated with the guest operating system; and 

receiving a trap caused by an attempt of the guest operating system to access a hardware 
resource having a higher privilege level than the privilege level associated with the guest 
operating system. \ 

7. (Original) The method of claim 6 further comprising: 

determining that tne trap can be handled by the first portion of the VMM; 

executing code associated with the trap; and 

returning control over the event to the guest operating system. 

8. (Original) The method of claim 6 further comprising: 

determining that the trap should be handled by the second portion of the VMM; 
delivering the trap to the second portion of the VMM; 

passing control over the pvent to the guest operating system after code associated with the 
trap was executed by the secondlportion of the VMM. 



9. (Currently amended) The 
VMM [further] comprises: 
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method of claim 1 wherein relocating the first portion of the 



findingyan unused region within the first address space; and 
re-mapping the first portion of the VMM into the unused region. 

10. ((Currently amended) The method of claim 1 wherein relocating the first portion of the 
VMM [further] comprises: 

determining that no unused region exists within the first address space; 

selecting a random region within the first address space; 

copyipg content of a memory located at the random region to the second address space; 

and 

re-mapbingthe first portion of the VMM into the random region. 
/ \ 

iih^l^he^me^iod of claim 10 further comprising: 
receivi^[g~5ontrol over an event initiated by the guest operating system, the event 
corresponding to an attempt of the guest operating system to access the content of the memory 
previously located aKthe random region; and 

accessing the cbpied content of the memory in the second address space. 

12. (Original) The method of claim 1 1 further comprising periodically relocating the first 
portion of the VMM to random regions within the first address space until finding a region that is 
infrequently accessed. 

13. (Currently amended) An apparatus comprising: 
a first address space associated with a guest operating system; 
a second address space associated with a virtual machine monitor (VMM); and 
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virtual machine kernel to divide the VMM into a first portion and a second portion, to 
locate thAsecond portion of the VMM in the second address space, to map the first portion of the 
VMM into the first address space and the second address space, to detect that the guest operating 
system attempts to access a region occupied by a the first portion of the VMM within the first 
address space A ahd to relocate the first portion of the VMM within the first address space to allow 
the guest operating system to access the region previously occupied by the first portion of the 
VMM. 



14. (Original) TheVpparatus of claim 13 wherein the first portion of the VMM includes a set 
of VMM code and data structures that are architecturally required to reside in the first address 
space. 

15. (Original) The apparatus of claim 13 wherein the first portion of the VMM includes a set 
of trap handlers and an interript-descriptor table (IDT). 

17. (Original) The apparatusW claim 13 wherein the virtual machine kernel is to receive 
control over an event initiated by\he guest operating system when the event may potentially 
cause an address space conflict between the guest operating system and the VMM. 



18. (Currently amended) The apparatus of claim ±3 17 wherein the virtual machine kernel is 
to receive control by setting access rights of the section occupied by the first portion of the 
VMM to a more privileged level than |a privilege level associated with the guest operating 
system, and by receiving a trap causedlby an attempt of the guest operating system to access a 
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hardware resource having a higher privilege level than the privilege level associated with the 
guest operating system. 

19. (OriginalKThe apparatus of claim 18 wherein the virtual machine kernel is to further 
determine that the trap can be handled by the first portion of the VMM, to execute code 
associated with the trap, and to return control over the event to the guest operating system. 

20. (Original) The apparatus of claim 18 wherein the virtual machine kernel is to further 
determine that the trap should to handled by the second portion of the VMM, to deliver the trap 
to the second portion of tha VMM, and to pass control over the event to the guest operating 
system after code associated with the trap was executed by the second portion of the VMM. 

21. (Original) The apparatus of claim 13 wherein the virtual machine kernel is to relocate the 
first portion of the VMM by finning an unused region within the first address space and re- 
mapping the first portion of the VMM into the unused region. 

22. (Original) The apparatus of claim 13 wherein the virtual machine kernel is to relocate the 
first portion of the VMM by determining that no unused region exists within the first address 
space, selecting random region within the first address space, copying content of a memory 
located at the^andomfTegK)n to the second address space, and re-mapping the first portion of the 
VMM into the ran3bm region. 

23. (Currently amended) The apparatus of claim 43 22 wherein the virtual machine kernel is 
to receive control over an event initiated by the guest operating system, the event corresponding 
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to an attempt of ttie guest operating system to access the content of the memory previously 
located at the ranqpm region, and to access the copied content of the memory in the second 
address space. 

24. (Currently aHiencfed) The apparatus of claim i£ 23 wherein the virtual machine kernel is 
to periodically relocate theVirst portion of the VMM to random regions within the first address 
space until finding a region Wiat is infrequently accessed. 

25. ([Currently amended) A system comprising: 

avmemory to include a first address space associated with a guest operating system and a 
second adtiress space associated with a virtual machine monitor (VMM); and 

a processor, coupled to the memory, to divide the VMM into a first portion and a second 
portion, to locate the second portion of the VMM in the second address space, to map the first 
portion of thei VMM into the first address space and the second address space, to detect that the 
guest operating system attempts to access a region occupied by a the first portion of the VMM 
within the firsAaddress space,, and to relocate the first portion of the VMM within the first 
address space to allow the guest operating system to access the region previously occupied by 
the first portion oAthe VMM. 



26. (Original) Tl 
VMM code and dati 
space. 



e system of claim 25 wherein the first portion of the VMM includes a set of 
structures that are architecturally required to reside in the first address 
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27. (Original) The system of claim 25 wherein the first portion of the VMM includes a set of 
trap handlers and an interrupt-descriptor table (IDT). 

28. (Currently amended) A computer readable medium that provides instructions, which 
when executed on a processor, cause said processor to perform operations comprising: 

dividing alvirtual machine monitor (VMM) into a first portion and a second portion; 



locating the second portion of the VMM in a second address space associated with the 



VMM; 

mapping the Virst portion of the VMM into a first address space and the second address 
space, the first address space being associated with the guest operating system; 

detecting that A the guest operating system attempts to access a region occupied by a the 
first portion of a virtuaKmachin e monitor ( the VMM) within a the first address space; and 

relocating the first portion of the VMM within the first address space to allow the guest 
operating system to access the region previously occupied by the first portion of the VMM. 

29. (Original) The computer readable medium of claim 28 comprising further instructions 

causing the processor to perform operations comprising: 

finding an unused region within the first address space; and 
re-mapping the first portion of the VMM into the unused region. 



30. (Original) 
causing the proces 

determining t 




ter readable medium of claim 28 comprising further instructions 
rm operations comprising: 
used region exists within the first address space; 



selecting a randonV region within the first address space; 
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copymg content of a memory located at the random region to the second address space; 

and 

re-mapping the first portion of the VMM into the random region. 
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